{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,27]],"date-time":"2025-10-27T16:26:19Z","timestamp":1761582379951,"version":"3.40.3"},"publisher-location":"Cham","reference-count":31,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031664557"},{"type":"electronic","value":"9783031664564"}],"license":[{"start":{"date-parts":[[2024,9,29]],"date-time":"2024-09-29T00:00:00Z","timestamp":1727568000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,9,29]],"date-time":"2024-09-29T00:00:00Z","timestamp":1727568000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025]]},"DOI":"10.1007\/978-3-031-66456-4_20","type":"book-chapter","created":{"date-parts":[[2024,9,28]],"date-time":"2024-09-28T06:01:58Z","timestamp":1727503318000},"page":"369-389","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["AutoWeb: Automatically Inferring Web Framework Semantics via\u00a0Configuration Mutation"],"prefix":"10.1007","author":[{"given":"Haining","family":"Meng","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Haofeng","family":"Li","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jie","family":"Lu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Chenghang","family":"Shi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Liqing","family":"Cao","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lian","family":"Li","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lin","family":"Gao","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,9,29]]},"reference":[{"key":"20_CR1","doi-asserted-by":"crossref","unstructured":"Antoniadis, A., Filippakis, N., Krishnan, P., Ramesh, R., Allen, N., Smaragdakis, Y.: Static analysis of java enterprise applications: frameworks and caches, the elephants in the room. In: Proceedings of the 41st ACM SIGPLAN Conference on Programming Language Design and Implementation, pp. 794\u2013807 (2020)","DOI":"10.1145\/3385412.3386026"},{"key":"20_CR2","doi-asserted-by":"crossref","unstructured":"Arzt, S., Bodden, E.: Stubdroid: Automatic inference of precise data-flow summaries for the android framework. In: 2016 IEEE\/ACM 38th International Conference on Software Engineering (ICSE), pp. 725\u2013735. IEEE (2016)","DOI":"10.1145\/2884781.2884816"},{"key":"20_CR3","doi-asserted-by":"publisher","unstructured":"Arzt, S., et al.: Flowdroid: precise context, flow, field, object-sensitive and lifecycle-aware taint analysis for android apps. In: Proceedings of the 35th ACM SIGPLAN Conference on Programming Language Design and Implementation, PLDI 2014, pp. 259-269. Association for Computing Machinery, New York, NY, USA (2014). https:\/\/doi.org\/10.1145\/2594291.2594299","DOI":"10.1145\/2594291.2594299"},{"key":"20_CR4","doi-asserted-by":"crossref","unstructured":"Bravenboer, M., Smaragdakis, Y.: Strictly declarative specification of sophisticated points-to analyses. In: Proceedings of the 24th ACM SIGPLAN Conference on Object Oriented Programming Systems Languages and Applications, pp. 243\u2013262 (2009)","DOI":"10.1145\/1640089.1640108"},{"key":"20_CR5","doi-asserted-by":"crossref","unstructured":"Centonze, P., Naumovich, G., Fink, S.J., Pistoia, M.: Role-based access control consistency validation. In: Proceedings of the 2006 International Symposium on Software Testing and Analysis, pp. 121\u2013132 (2006)","DOI":"10.1145\/1146238.1146253"},{"key":"20_CR6","unstructured":"Chiba, S.: Javassist, https:\/\/www.javassist.org\/"},{"key":"20_CR7","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"313","DOI":"10.1007\/3-540-45102-1_16","volume-title":"ECOOP 2000 \u2014 Object-Oriented Programming","author":"S Chiba","year":"2000","unstructured":"Chiba, S.: Load-time structural reflection in java. In: Bertino, E. (ed.) ECOOP 2000. LNCS, vol. 1850, pp. 313\u2013336. Springer, Heidelberg (2000). https:\/\/doi.org\/10.1007\/3-540-45102-1_16"},{"key":"20_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"364","DOI":"10.1007\/978-3-540-39815-8_22","volume-title":"Generative Programming and Component Engineering","author":"S Chiba","year":"2003","unstructured":"Chiba, S., Nishizawa, M.: An easy-to-use toolkit for efficient java bytecode translators. In: Pfenning, F., Smaragdakis, Y. (eds.) GPCE 2003. LNCS, vol. 2830, pp. 364\u2013376. Springer, Heidelberg (2003). https:\/\/doi.org\/10.1007\/978-3-540-39815-8_22"},{"key":"20_CR9","doi-asserted-by":"crossref","unstructured":"Clapp, L., Anand, S., Aiken, A.: Modelgen: mining explicit information flow specifications from concrete executions. In: Proceedings of the 2015 International Symposium on Software Testing and Analysis, pp. 129\u2013140 (2015)","DOI":"10.1145\/2771783.2771810"},{"key":"20_CR10","unstructured":"Community, S.O.: stackoverflow. https:\/\/stackoverflow.com\/"},{"key":"20_CR11","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"77","DOI":"10.1007\/3-540-49538-X_5","volume-title":"ECOOP\u201995 \u2014 Object-Oriented Programming, 9th European Conference, \u00c5arhus, Denmark, August 7\u201311, 1995","author":"J Dean","year":"1995","unstructured":"Dean, J., Grove, D., Chambers, C.: Optimization of object-oriented programs using static class hierarchy analysis. In: Tokoro, M., Pareschi, R. (eds.) ECOOP 1995. LNCS, vol. 952, pp. 77\u2013101. Springer, Heidelberg (1995). https:\/\/doi.org\/10.1007\/3-540-49538-X_5"},{"key":"20_CR12","doi-asserted-by":"crossref","unstructured":"Dietrich, J., Gauthier, F., Krishnan, P.: Driver generation for java EE web applications. In: 2018 25th Australasian Software Engineering Conference (ASWEC), pp. 121\u2013125. IEEE (2018)","DOI":"10.1109\/ASWEC.2018.00024"},{"key":"20_CR13","unstructured":"Edition, J.E.: Jakarta EE. https:\/\/jakarta.ee\/"},{"key":"20_CR14","doi-asserted-by":"crossref","unstructured":"Ferrara, P., Negrini, L.: SARL: OO framework specification for static analysis. In: Software Verification, pp. 3\u201320. Springer, Cham (2020)","DOI":"10.1007\/978-3-030-63618-0_1"},{"key":"20_CR15","unstructured":"Foundation, A.: Apache struts 2. https:\/\/struts.apache.org\/"},{"key":"20_CR16","unstructured":"Foundation, A.S.: Apache tomcat. https:\/\/tomcat.apache.org\/"},{"key":"20_CR17","unstructured":"Framework, S.: Stripes framework. https:\/\/stripesframework.atlassian.net\/"},{"key":"20_CR18","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"153","DOI":"10.1007\/3-540-36579-6_12","volume-title":"Compiler Construction","author":"O Lhot\u00e1k","year":"2003","unstructured":"Lhot\u00e1k, O., Hendren, L.: Scaling java points-to analysis using Spark. In: Hedin, G. (ed.) CC 2003. LNCS, vol. 2622, pp. 153\u2013169. Springer, Heidelberg (2003). https:\/\/doi.org\/10.1007\/3-540-36579-6_12"},{"key":"20_CR19","doi-asserted-by":"crossref","unstructured":"Luo, L.: A general approach to modeling java framework behaviors. In: Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, pp. 1680\u20131682 (2021)","DOI":"10.1145\/3468264.3473489"},{"key":"20_CR20","unstructured":"Luo, L.: Improving Real-World Applicability of Static Taint Analysis. Ph.D. thesis, Universit\u00e4t Paderborn, October 2021. https:\/\/www.bodden.de\/pubs\/phdLuo.pdf"},{"key":"20_CR21","doi-asserted-by":"crossref","unstructured":"Mart\u00ednez, S., Cosentino, V., Cabot, J.: Model-based analysis of java EE web security configurations. In: 2016 IEEE\/ACM 8th International Workshop on Modeling in Software Engineering (MiSE), pp. 55\u201361. IEEE (2016)","DOI":"10.1145\/2896982.2896986"},{"issue":"4","key":"20_CR22","doi-asserted-by":"publisher","first-page":"229","DOI":"10.1145\/566171.566213","volume":"27","author":"JW Nimmer","year":"2002","unstructured":"Nimmer, J.W., Ernst, M.D.: Automatic generation of program specifications. ACM SIGSOFT Softw. Eng. Notes 27(4), 229\u2013239 (2002)","journal-title":"ACM SIGSOFT Softw. Eng. Notes"},{"key":"20_CR23","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"245","DOI":"10.1007\/978-3-642-24206-9_14","volume-title":"Datalog Reloaded","author":"Y Smaragdakis","year":"2011","unstructured":"Smaragdakis, Y., Bravenboer, M.: Using Datalog for fast and easy program analysis. In: de Moor, O., Gottlob, G., Furche, T., Sellers, A. (eds.) Datalog 2.0 2010. LNCS, vol. 6702, pp. 245\u2013251. Springer, Heidelberg (2011). https:\/\/doi.org\/10.1007\/978-3-642-24206-9_14"},{"key":"20_CR24","unstructured":"Spring: Spring boot. https:\/\/spring.io\/projects\/spring-boot"},{"key":"20_CR25","unstructured":"Spring: Spring framework. https:\/\/spring.io\/projects\/spring-framework"},{"key":"20_CR26","doi-asserted-by":"crossref","unstructured":"Sridharan, M., Artzi, S., Pistoia, M., Guarnieri, S., Tripp, O., Berg, R.: F4f: taint analysis of framework-based web applications. In: Proceedings of the 2011 ACM International Conference on Object Oriented Programming Systems Languages and Applications, pp. 1053\u20131068 (2011)","DOI":"10.1145\/2048066.2048145"},{"key":"20_CR27","unstructured":"Toman, J., Grossman, D.: Taming the static analysis beast. In: 2nd Summit on Advances in Programming Languages (SNAPL 2017). Schloss Dagstuhl-Leibniz-Zentrum fuer Informatik (2017)"},{"key":"20_CR28","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"210","DOI":"10.1007\/978-3-642-37057-1_15","volume-title":"Fundamental Approaches to Software Engineering","author":"O Tripp","year":"2013","unstructured":"Tripp, O., Pistoia, M., Cousot, P., Cousot, R., Guarnieri, S.: Andromeda: accurate and scalable security analysis of web applications. In: Cortellessa, V., Varr\u00f3, D. (eds.) FASE 2013. LNCS, vol. 7793, pp. 210\u2013225. Springer, Heidelberg (2013). https:\/\/doi.org\/10.1007\/978-3-642-37057-1_15"},{"issue":"6","key":"20_CR29","doi-asserted-by":"publisher","first-page":"87","DOI":"10.1145\/1543135.1542486","volume":"44","author":"O Tripp","year":"2009","unstructured":"Tripp, O., Pistoia, M., Fink, S.J., Sridharan, M., Weisman, O.: Taj: effective taint analysis of web applications. ACM Sigplan Notices 44(6), 87\u201397 (2009)","journal-title":"ACM Sigplan Notices"},{"key":"20_CR30","doi-asserted-by":"crossref","unstructured":"Wang, J., Wu, Y., Zhou, G., Yu, Y., Guo, Z., Xiong, Y.: Scaling static taint analysis to industrial SOA applications: a case study at Alibaba. In: Proceedings of the 28th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, pp. 1477\u20131486 (2020)","DOI":"10.1145\/3368089.3417059"},{"key":"20_CR31","doi-asserted-by":"crossref","unstructured":"Yu, X., Jin, G.: Dataflow tunneling: mining inter-request data dependencies for request-based applications. In: 2018 IEEE\/ACM 40th International Conference on Software Engineering (ICSE), pp. 586\u2013597. IEEE (2018)","DOI":"10.1145\/3180155.3180171"}],"container-title":["Lecture Notes in Computer Science","Engineering of Complex Computer Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-66456-4_20","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,4,5]],"date-time":"2025-04-05T21:55:51Z","timestamp":1743890151000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-66456-4_20"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,9,29]]},"ISBN":["9783031664557","9783031664564"],"references-count":31,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-66456-4_20","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2024,9,29]]},"assertion":[{"value":"29 September 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ICECCS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Engineering of Complex Computer Systems","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Limassol","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Cyprus","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2024","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"18 June 2024","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20 June 2024","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"28","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"iceccs2024","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/cyprusconferences.org\/iceccs2024\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}